This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/TvCeC-CTMvUOvfqvZDepdi4lqnQ.roa File: TvCeC-CTMvUOvfqvZDepdi4lqnQ.roa (raw, json) Hash identifier: ESVtJ3kouBpjTr4WqJWzhzotaZoW4Cj/KB3SLHg/1MA= Subject key identifier: 4E:F0:9E:0B:E0:93:32:F5:0E:BD:FA:AF:64:37:A9:76:2E:25:AA:74 Certificate issuer: /CN=aa6782cd7bb922ca4bc6e80e7857f4922f5c23c4 Certificate serial: 019B7F831B17B1B6CAD3D871450E16FCA57D Authority key identifier: AA:67:82:CD:7B:B9:22:CA:4B:C6:E8:0E:78:57:F4:92:2F:5C:23:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/TvCeC-CTMvUOvfqvZDepdi4lqnQ.roa Signing time: Fri 02 Jan 2026 16:20:57 +0000 ROA not before: Fri 02 Jan 2026 16:20:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31512 IP address blocks: 217.149.16.0/22 maxlen: 22 217.149.20.0/25 maxlen: 25 217.149.20.128/27 maxlen: 27 217.149.20.160/27 maxlen: 27 217.149.20.192/29 maxlen: 29 217.149.23.0/25 maxlen: 25 217.149.23.128/25 maxlen: 25 217.149.24.0/24 maxlen: 24 217.149.26.0/24 maxlen: 24 217.149.27.0/24 maxlen: 24 217.149.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:1b:17:b1:b6:ca:d3:d8:71:45:0e:16:fc:a5:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa6782cd7bb922ca4bc6e80e7857f4922f5c23c4 Validity Not Before: Jan 2 16:20:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ef09e0be09332f50ebdfaaf6437a9762e25aa74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:a0:0a:3b:80:cf:dc:e9:90:67:11:4b:12: c1:bd:1d:35:f3:7f:ae:5e:69:4f:7f:dd:41:f1:25: 15:85:42:bc:dc:d1:62:88:19:a6:c7:e7:68:07:b9: 07:27:ba:51:b5:7f:20:b8:70:a9:5c:d7:bf:a3:5d: e7:07:51:d4:87:5d:a9:67:34:d7:25:81:10:ee:b0: f1:29:18:8a:d9:87:42:46:64:5b:8c:0e:7c:db:0a: 75:1d:6e:37:1d:c7:94:14:f2:3b:24:d5:a6:02:55: c5:8e:ee:fa:0c:f7:41:de:04:8b:ae:5f:77:40:54: 55:55:04:8a:99:84:fc:f2:86:b7:29:99:74:07:56: 83:bb:14:cf:cb:c4:57:ab:45:b7:4d:4e:ad:35:b2: ef:20:ff:6b:2d:32:82:db:6a:76:96:93:7a:61:52: 6e:cf:8f:e4:66:c4:d8:47:0c:bf:a3:c5:e8:75:59: a3:70:0e:bd:d5:32:18:9e:4e:60:0c:dc:51:aa:75: 98:d6:d6:70:3c:04:f2:d6:cb:d5:44:d2:37:85:8f: 55:e7:be:7e:73:34:5d:09:07:ee:e4:64:c2:fc:21: 7c:7e:2a:23:c1:f4:05:58:c1:93:7d:89:25:72:72: 66:cc:5d:59:26:fe:f1:23:90:5f:59:28:a1:02:73: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F0:9E:0B:E0:93:32:F5:0E:BD:FA:AF:64:37:A9:76:2E:25:AA:74 X509v3 Authority Key Identifier: keyid:AA:67:82:CD:7B:B9:22:CA:4B:C6:E8:0E:78:57:F4:92:2F:5C:23:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmeCzXu5IspLxugOeFf0ki9cI8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/TvCeC-CTMvUOvfqvZDepdi4lqnQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/39f4bf-38fc-4312-8516-b430e8de7747/1/qmeCzXu5IspLxugOeFf0ki9cI8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.149.16.0-217.149.20.199 217.149.23.0-217.149.24.255 217.149.26.0-217.149.28.255 Signature Algorithm: sha256WithRSAEncryption 6a:24:83:f2:46:48:13:e8:46:32:91:da:6b:7c:8e:e8:f0:fa: e1:10:6e:60:eb:92:37:ec:d5:70:7b:4f:48:4e:c5:e7:f1:ee: 82:17:90:d0:72:d6:0b:05:1e:6b:40:6c:96:d8:06:fd:62:19: d1:33:d0:3f:9e:da:3c:63:bf:ee:68:90:8e:25:ac:18:00:f6: e5:38:f8:60:73:ed:cd:fa:ea:63:52:7b:a5:6e:fc:8b:4b:55: b9:b4:d7:bf:36:8b:1d:d8:66:f5:bb:ac:03:20:d3:92:ce:fd: 23:bc:e8:4e:83:14:31:a3:0d:ec:9e:ff:33:7a:f6:56:e8:9f: 75:3e:c5:c1:39:10:3b:09:07:74:86:56:f7:fe:a2:64:d8:9a: 5a:59:ba:8f:a7:f5:d8:bf:c0:8e:8a:59:5c:31:4e:18:95:fa: 9f:f0:ea:f6:71:14:2f:95:69:91:df:e4:ec:2b:f3:6b:6d:4e: 11:49:40:5a:81:3f:0f:7f:fc:ff:a0:61:3c:0b:75:57:00:67: f6:7e:cf:3e:75:60:a2:00:af:65:a5:ba:b9:85:56:78:ec:1d: 8d:2a:ef:a4:19:52:0b:42:db:fa:66:3f:56:cf:1e:db:d6:d7: 56:57:f4:01:06:a5:f4:88:9a:a7:f1:38:51:0d:ad:1a:fe:6d: 82:df:22:7b -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgISAZt/gxsXsbbK09hxRQ4W/KV9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNjc4MmNkN2JiOTIyY2E0YmM2ZTgwZTc4NTdmNDkyMmY1 YzIzYzQwHhcNMjYwMTAyMTYyMDU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWYwOWUwYmUwOTMzMmY1MGViZGZhYWY2NDM3YTk3NjJlMjVhYTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLCgCjuAz9zpkGcRSxLBvR0183+u XmlPf91B8SUVhUK83NFiiBmmx+doB7kHJ7pRtX8guHCpXNe/o13nB1HUh12pZzTX JYEQ7rDxKRiK2YdCRmRbjA582wp1HW43HceUFPI7JNWmAlXFju76DPdB3gSLrl93 QFRVVQSKmYT88oa3KZl0B1aDuxTPy8RXq0W3TU6tNbLvIP9rLTKC22p2lpN6YVJu z4/kZsTYRwy/o8XodVmjcA691TIYnk5gDNxRqnWY1tZwPATy1svVRNI3hY9V575+ czRdCQfu5GTC/CF8fiojwfQFWMGTfYklcnJmzF1ZJv7xI5BfWSihAnP76QIDAQAB o4ICLjCCAiowHQYDVR0OBBYEFE7wngvgkzL1Dr36r2Q3qXYuJap0MB8GA1UdIwQY MBaAFKpngs17uSLKS8boDnhX9JIvXCPEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW1lQ3pYdTVJc3BMeHVnT2VGZjBraTljSThRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8zOWY0YmYtMzhmYy00MzEyLTg1MTYt YjQzMGU4ZGU3NzQ3LzEvVHZDZUMtQ1RNdlVPdmZxdlpEZXBkaTRscW5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8zOWY0YmYtMzhmYy00MzEyLTg1MTYtYjQzMGU4ZGU3NzQ3 LzEvcW1lQ3pYdTVJc3BMeHVnT2VGZjBraTljSThRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAxBAIAATArMA0DBATZlRAD BQPZlRTAMAwDBADZlRcDBADZlRgwDAMEAdmVGgMEANmVHDANBgkqhkiG9w0BAQsF AAOCAQEAaiSD8kZIE+hGMpHaa3yO6PD64RBuYOuSN+zVcHtPSE7F5/HugheQ0HLW CwUea0BsltgG/WIZ0TPQP57aPGO/7miQjiWsGAD25Tj4YHPtzfrqY1J7pW78i0tV ubTXvzaLHdhm9busAyDTks79I7zoToMUMaMN7J7/M3r2VuifdT7FwTkQOwkHdIZW 9/6iZNiaWlm6j6f12L/AjopZXDFOGJX6n/Dq9nEUL5Vpkd/k7Cvza21OEUlAWoE/ D3/8/6BhPAt1VwBn9n7PPnVgogCvZaW6uYVWeOwdjSrvpBlSC0Lb+mY/Vs8e29bX Vlf0AQal9Iiap/E4UQ2tGv5tgt8iew== -----END CERTIFICATE-----Generated at Mon Jan 26 10:14:52 2026 by rpki-client